What crisis does Internet face?
♦  Customer's secret data is exposed insecurely to Internet such as identification number, password.
♦  Network deception attack:

-Phishing
-Trojan Horse
-Man in the Middle

♦  Customer regards online banking as mistrust.
♦  How to reconstruct the customer's confidence with online banking?

Phishing
Phishers attempt to fraudulently acquire sensitive information, such as usernames, passwords and credit card details, by masquerading as a trustworthy entity in an electronic communication. Phishing is typically carried out by email or instant messaging, and often directs users to give details at a website.

Online banking phishing for example: 

Trojan Horse
In the context of computer software, a trojan horse is a program that unlike a virus, contains or installs a malicious program while under the guise of being something else. Trojan horses may appear to be useful or interesting programs to an unsuspecting user, but are actually harmful when executed. For example, you download what appears to be a movie or music file, but when you click on it, you unleash a dangerous program that erases your disk, sends your credit card numbers and passwords to a stranger. Stranger hijack may far-end controls remotely your computer by trojan horse.

Man in the Middle
A man in the middle attack is one in which the attacker intercepts messages in a public key exchange and then retransmits them, substituting his own public key for the requested one, so that the two original parties still appear to be communicating with each other. The attacker must be able to observe and intercept messages going between the two victims.

To avoid malicious attack on internet, we need a series of OSC product to protect us! Contact us now!

網路交易正面臨危機
♦ 使用者ID、密碼等機密資料不加保護的暴露在網路上。
♦ 網路詐欺攻擊，包括：
 -木馬程式危害情事之發生。
 -網路釣魚(Phishing)騙取客戶密碼情事之發生。
 -互動式假網站(Man-in-the-Middle)竄改交易內容之情事。
♦ 客戶對於電子銀行產生不信任
♦ 業者如何提供客戶安全放心的電子銀行服務？

網路釣魚
根據反網路釣魚工作小組（APWG）定義，網路釣魚是利用偽造電子郵件與網站作為誘餌，愚弄使用者洩漏如銀行帳戶密碼、信用卡號碼等個人機密資料。

木馬程式
根據刑事警察局偵九隊解釋，所謂「木馬程式」是指具有短小、精幹、安裝方便與不意被查覺等特點之軟體。被害電腦一但被植入木馬程式後，攻擊者便可以遠端下載、刪除或列印受攻擊電腦中資料，也可以遠端取得對方的帳號與密碼，或是對用戶的電腦進行自動追蹤與監督。

互動式假網站
駭客躲藏在銀行與用戶端之間，以偽裝的銀行網站，一邊與用戶連線互動竊取資料，一邊產生假的交易資料，傳送至銀行真實網站進行交易。

為防範來自網路的惡意攻擊，我們需要一系列的安全認證產品來保護資料安全！立即與歐柏系統連絡!